Share via


Best Practices for Password Extensions

As with any directory technology, it is important that you follow safe practices any time that you are using passwords. Follow these guidelines when you create and use password extensions in Forefront Identity Manager Synchronization Service (FIM Synchronization Service):

  • Do not write passwords to a file.

  • Do not pass user names or passwords in exception messages.

  • Do not use embedded SQL statements in passwords strings.

  • Do not use XML characters, such as "<" or ">", in password strings.

See Also

Concepts

Using Password Extensions
How to: Implement Password Extensions